Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

285 advisories

Loading
Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2024-21401 was published Feb 13, 2024
Microsoft Azure Site Recovery Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2024-21364 was published Feb 13, 2024
EverShop at risk to unauthorized access via weak HMAC secret Critical
CVE-2023-46943 was published for @evershop/evershop (npm) Jan 13, 2024
@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR) Critical
CVE-2024-22206 was published for @clerk/nextjs (npm) Jan 12, 2024
nikosdouvlis SokratisVidros
colinclerk agis braden-clerk BRKalow
Drupal Improper Access Control Critical
CVE-2019-6342 was published for drupal/core (Composer) Jan 11, 2024
SAP Business One installation - version 10.0, does not perform proper authentication and... Critical Unreviewed
CVE-2023-31403 was published Nov 14, 2023
Sielco PolyEco1000 is vulnerable to an authentication bypass vulnerability due... Critical Unreviewed
CVE-2023-46665 was published Oct 26, 2023
Sielco PolyEco1000 is vulnerable to an improper access control vulnerability when... Critical Unreviewed
CVE-2023-46664 was published Oct 26, 2023
Sielco PolyEco1000 is vulnerable to an attacker escalating their privileges by modifying... Critical Unreviewed
CVE-2023-46661 was published Oct 26, 2023
SaToken privilege escalation vulnerability Critical
CVE-2023-44794 was published for cn.dev33:sa-token-core (Maven) Oct 25, 2023
ProTip! Advisories are also available from the GraphQL API